I was looking through a list of security issues in DB2 that IBM
recently patched (http://www-01.ibm.com/support/docview.wss?uid=swg21432298
) and cross-referencing APARS against CVEs and OSVDBs. I didn't see
any mention of the issues IBM labels "SECURITY APAR: MODIFIED SQL DATA
table function is not dropped when definer loses required privileges
to maintain the objects." (APARs IZ46773, IZ46774, IC63548). All the
other issues appear to be covered. Was this missed?
George
--
theall at tenablesecurity.com